Is the Netcahe using basic HTTP authentication or NTLM over HTTP as
authentication mechanism, or in other words do the users need to login when
trying to browse, or are they automatically logged in with their domain
account?
NTLM over HTTP cannot be proxied, and will give a range of strange errors if
one attempts to proxy it. This is due to a rather gross abuse of HTTP in the
NTLM over HTTP authentication scheme..
Regards
Henrik
Elmars Ositis wrote:
> Hello-
>
> I have the following problem, for which I cannot find the answer to in
> either the FAQ or the archives...
>
> I have a squid proxy serving local users, which is required to connect to a
> parent cache on the other end of a WAN link. This parent cache (netcache)
> is configured for user authentication. The netcache is using the nt
> domain\userid information to authenticate. All trust relationships are ok.
> When users connect directly to the netcache, there are no problems. When
> users connect to the local squid proxy, some requests are serviced without
> issue, other requests are serviced only after typing in the userid/pw
> information from 3 to 10 times per page. Sometimes no login window is
> given, and access is denied. When connecting directly to the netcache no
> such problems are exibited.
>
> The remote webcache is set as the default parent, and no direct is allowed.
> On the local end all local addresses are permitted, and no userid access
> controls are enabled. The squid cache worked without problem for 6 months
> without any changes to a different parent cache which did not implement
> access controls. This parent cache is now disabled.
>
> Users are NT 4.0 and Windows2000 clients using IE5.5. The same problems I
> experience with my XP and RH 7.2 workstations.
>
> Any advice you could provide in this matter will help protect me from the
> lynching mob.... ;>)
>
>
> Elmars Ositis
Received on Thu Jun 06 2002 - 07:59:58 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:28 MST